cbcvebase.
CVE-2020-36201
published 2021-01-26

CVE-2020-36201: An issue was discovered in certain Xerox WorkCentre products. They do not properly encrypt passwords. This affects 3655, 3655i, 58XX, 58XXi 59XX, 59XXi, 6655…

PriorityP339high7.5CVSS 3.1
AVNACLPRNUINSUCHINAN
EPSS
0.80%
52.1th percentile
An issue was discovered in certain Xerox WorkCentre products. They do not properly encrypt passwords. This affects 3655, 3655i, 58XX, 58XXi 59XX, 59XXi, 6655, 6655i, 72XX, 72XXi 78XX, 78XXi, 7970, 7970i, EC7836, and EC7856 devices.

Affected

30 ranges· showing 25
VendorProductVersion rangeFixed in
xeroxworkcentre_3655_firmware< 075.060.000.12010075.060.000.12010
xeroxworkcentre_3655i_firmware< 075.060.000.12010075.060.000.12010
xeroxworkcentre_5865_firmware< 075.190.010.12010075.190.010.12010
xeroxworkcentre_5865i_firmware< 075.190.010.12010075.190.010.12010
xeroxworkcentre_5875_firmware< 075.190.010.12010075.190.010.12010
xeroxworkcentre_5875i_firmware< 075.190.010.12010075.190.010.12010
xeroxworkcentre_5890_firmware< 075.190.010.12010075.190.010.12010
xeroxworkcentre_5890i_firmware< 075.190.010.12010075.190.010.12010
xeroxworkcentre_5945_firmware< 075.091.010.12010075.091.010.12010
xeroxworkcentre_5945i_firmware< 075.091.010.12010075.091.010.12010
xeroxworkcentre_5955_firmware< 075.091.010.12010075.091.010.12010
xeroxworkcentre_5955i_firmware< 075.091.010.12010075.091.010.12010
xeroxworkcentre_6655_firmware< 075.110.010.12010075.110.010.12010
xeroxworkcentre_6655i_firmware< 075.110.010.12010075.110.010.12010
xeroxworkcentre_7220_firmware< 075.030.000.12010075.030.000.12010
xeroxworkcentre_7220i_firmware< 075.030.000.12010075.030.000.12010
xeroxworkcentre_7225_firmware< 075.030.000.12010075.030.000.12010
xeroxworkcentre_7225i_firmware< 075.030.000.12010075.030.000.12010
xeroxworkcentre_7830_firmware< 075.010.000.12010075.010.000.12010
xeroxworkcentre_7830i_firmware< 075.010.000.12010075.010.000.12010
xeroxworkcentre_7835_firmware< 075.010.000.12010075.010.000.12010
xeroxworkcentre_7835i_firmware< 075.010.000.12010075.010.000.12010
xeroxworkcentre_7845_firmware< 075.040.000.12010075.040.000.12010
xeroxworkcentre_7845i_firmware< 075.040.000.12010075.040.000.12010
xeroxworkcentre_7855_firmware< 075.040.000.12010075.040.000.12010

CVSS provenance

nvdv3.17.5HIGHCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
nvdv2.05.0MEDIUMAV:N/AC:L/Au:N/C:P/I:N/A:N
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.